Google Unveils Go 1.1 Ahead of Annual I/O Conference

Google announced the release of version 1.1 of its Go programming language two days before its annual I/O conference, which gets underway on Wednesday. The first major update of the open source language since the search engine giant released version 1 just about a year ago focuses on performance-related improvements, including optimization of the compiler and linker, garbage collector, goroutine scheduler, map implementation and parts of the standard library

Google engineer Andrew Gerrand announced the release on Monday in "The Go Programming Language Blog." "It is likely that your Go code will run noticeably faster when built with Go 1.1," he wrote.

The new version also comes with minor changes to the language itself. Gerrand calls out two of those changes: modifications to return requirements, which he says will lead to "more succinct and correct programs;" and the introduction of method values, which provides "an expressive way to bind a method to its receiver as a function value."

Concurrent programming is also safer in this version, Gerrand says, because of the addition of a data race detector for ferreting out memory synch errors in the program. More details about how the race detector works are included in the new Go manual. Also, the tools and standard library have been improved and expanded.

First announced in 2009, Go (also known as "Golang") is a compiled, garbage-collected, concurrent system programming language that Google reportedly uses in its own production systems. According to Gerrand, more than 2,600 commits from 161 people have been contributed to the project since Go 1.0 was released.

"All this would not have been possible without the help of our contributors from the open source community," Gerrand added, highlighting the contributions of Shenghou Ma, Rémy Oudompheng, Dave Cheney, Mikio Hara, Alex Brainman, Jan Ziak, and Daniel Morsing.

Go 1.1 is compatible with Go 1.0, but the project leaders recommend that users upgrade to the new release, which can be downloaded here.

The announcement underscores the emphasis Google I/O conference organizers are placing on developers at this year's event.

"This is truly a developer conference this year," one event organizer told @ADTmag. "They're definitely the focus this year."

Sundar Pichai, head of Google's Android group, seemed to be managing expectations for this year's event in a Wired interview. The company won't be launching many new products at this year's show, he said, but instead will show off the work being done by developers on the Android and Google platforms.

That organizer also said that this year's event looks to be the largest to date, with more than 5,500 registered attendees, 120 technical sessions, 18 code labs (essentially, hackathons) and 185 partners in the "Sandbox" showing off their products and services.

Posted by John K. Waters on 05/14/2013 at 10:53 AM0 comments

Microsoft's Mitra Azizirad on the Changing Roles of Dev and Ops

Listening to Mitra Azizirad, GM of Microsoft's Developer Tools Marketing & Sales group, talk about Redmond's plans for its venerable Visual Studio IDE and her long career with the company, I was reminded again why I feel so lucky to be on the tech beat: Almost every day I get to talk with smart people who love what they do.

Azizirad was in San Francisco last week with "Soma" Somasegar, VP of Microsoft's Developer Division, speaking with a group of reporters informally about MS developer tools. (More on that conversation in Visual Studio Magazine.) She started at Microsoft as an architectural engineer based in Washington D.C. back in 1992, which gives her a decades-long perspective on the evolution of the role of the developer in the enterprise.

"These are really exciting times for people in our business," Azizirad said. "Exciting, but unpredictable. No day looks the same at this point. People's roles in the enterprise are changing. And the conversations we're having these days are very different from the conversations we had a few years ago."

Talking with execs about application metrics, for example.

"You find yourself talking with the CIO and CMO about features that have business value and sustaining those throughout a regular cadence," she said. "And how often will we rev certain features? And what are the key performance issues? What are the bottlenecks from a development perspective? How do you recognize those bottlenecks and move past them? How are you looking at where the bugs are showing up and how quickly can you go in and solve for those? These are conversations you would never have had outside the development teams before."

Azizirad is also seeing a significant shift in Application Lifecycle Management (ALM) decision making within the enterprise. Although developers still make the lion's share of those decisions, about a third is now made by operations, she said.

"Developers are still making most of those decisions," she said, "but it used to be just developers. Operations is coming up really quickly in that regard. They're saying, we're not just waiting for you to make the choice; we know what we need on this end, too. So connecting those teams is sometimes a big part of what we do."

But making those connections, Azizirad added, is rarely just about the capabilities of the technology.

"At a certain level, these are cultural issues," she said. "Developers use this set of tools and this set of platforms; operations uses this other set of tools and platforms. Getting past those differences and bringing those groups together has become a core part of a cultural shift within the enterprise."

A shift, she added, that is also being driven by the demands of accelerating software delivery cycles.

"They simply need to come together, because you no longer have these long release cycles," she said. "Gone are the days when you could take three months to plan, nine months to build, and six months to test. When we talk to organizations today, we may start out talking to individuals, but at some point, they're all in the room together."

Microsoft has, itself, committed to rapid update "cadence" of Visual Studio that, along with the usual bug fixes and performance enhancements, includes new functionality, beginning with April's release of Update 2. Since it was launched back in September, Visual Studio 2012 has garnered more than 4 million downloads, the company reports. That's the fastest uptake of any version of VS in the history of the company.

"I've seen just a few truly pivotal shifts in the industry since I joined Microsoft," Azizirad said. "They almost always start with the developer, and I believe that we're seeing one of them now. It's an amazing thing to be a part of."

Posted by John K. Waters on 05/10/2013 at 10:53 AM0 comments

No-Cost Interop 'Lab' Kit Connects Hadoop HBase and Excel

JNBridge, maker of tools that connect Java- and .NET-based components and apps, this week released another of its free "labs," a.k.a. interoperability kits for developers looking for new ways of connecting disparate technologies. The latest lab provides a way to build a Microsoft Excel add-in for Hadoop HBase.

HBase is the Java-based, open source, distributed database for Big Data used by Apache Hadoop, the popular open-source platform for data-intensive distributed computing. HBase apps must use Java APIs, which makes it tough to provide cross-platform business intelligence on the desktop. The new JNBridge Lab provides a simple Excel front end to HBase MapReduce that allows developers to view HBase tables and execute MapReduce projects. Google's MapReduce is a programming model for processing and generating large data sets. It supports parallel computations over large data sets on unreliable computer clusters.

Why create an Excel add-in? "Microsoft Excel has always been the ubiquitous off-the-shelf tool for data analysis and it makes a ready-to-go front end for Hadoop," the company explained in a blog post. "Excel can be extended using add-ins developed in Visual Studio using...Visual Studio Tools for Office."

The Excel add-in lets users view HBase tables and execute MapReduce jobs. It consists of a single control pane; as the user interacts with the pane, underlying code accesses the Excel data model consisting of workbooks, worksheets and charts.

"Most Hadoop users run Hadoop on Linux, but many also want to integrate .NET and other Microsoft technologies, and we've been supporting them in our series of labs," explained Wayne Citrin, CTO of JNBridge, in a statement. "This latest JNBridge lab extends this support by allowing users to continue to run the analyses on Linux while viewing the results with a familiar Excel front end. By supporting the HBase client API, users can get finer-grained control over the queries that they perform than they can through other mechanisms."

The latest lab uses the company's flagship product, JNBridgePro, for .NET-to-Java interoperability.

The lab also leverages concepts and code from the previous lab, "Building a LINQ Provider for HBase MapReduce"). LINQ (Language Integrated Query) is Microsoft's .NET Framework component that adds native data querying capabilities to .NET languages (C#, VB, etc.).

The Boulder, Colo.-based company began offering these interoperability kits last year as part of the company's 10th anniversary celebration. "It was a way of showing people how to use the out-of-the-box functionality of JNBridgePro to do useful things that they may not have thought of, or that don't exist out there as products," Citrin told ADTmag at the time. The first JNBridge Lab was an SSH Adapter for BizTalk Server designed to enable the secure access and manipulation of files over the network.

Posted by John K. Waters on 05/08/2013 at 10:53 AM0 comments

New Java Security Flaw Uncovered After Mega-Patch

Java is starting to look like a chubby guy in tight Dockers who can't sit down without splitting a seam (and yes, I analogize from experience). A week after Oracle released Java 7, Update 21, which included 42 vulnerability patches, news of a reflection API vulnerability in the newly shipped Java Runtime Environment (JRE) has emerged, as reported by veteran Java bug hunter Adam Gowdiak.

Gowdiak is CEO and founder of Security Explorations, a Poland-based security and vulnerability research company. He wrote about the security flaw on the "Full Disclosure" mailing list, a "lightly moderated high-traffic forum for disclosure of security information." (It's a great list whose contributors display a sense of humor in the face of some serious issues.)

The Java Reflection API is used to examine and modify the behavior of applications running in a Java Virtual Machine (JVM). The reflection API vulnerability affects all versions of Java SE 7, including Update 21, Gowdiak said, and can be used to achieve a complete Java security sandbox bypass on a target system. Successful exploitation in a Web browser would require "proper user interaction," he wrote -- in other words, the user has to click "yes" to allow a malicious app to execute even when a security warning window is displayed.

Gowdiak's post comes on the heels of Oracle's recent announcement that delays in the release of Java 8 are the result of the company shifting significant material resources to work on Java security vulnerabilities.

In January, Oracle's senior product security manager, Milton Smith, told Java User Group (JUG) leaders during a conference call that the company's chief area of concern was Java plugins running applets on the browser. ""A lot of the attacks that we've seen, and the security fixes that apply to them, have been [about] Java in the browser," he said. "It's the biggest target now."

And yet Gowdiak said the new issue he found is present not only in the JRE Plugin/JDK software, but also the Server JRE. He says he sent a report to Oracle "signaling multiple security problems in Java SE 7 and the Reflection API in particular," along with proof-of-concept code, in Apr 2012.

"It's been a year since then and to our true surprise," we were still able to discover one of the simplest and most powerful instances of Java Reflection API based vulnerabilities," he wrote. "It looks [as though] Oracle was primarily focused on hunting down potentially dangerous Reflection API calls in the 'allowed' classes space. If so, no surprise that Issue 61 was overlooked."

Posted by John K. Waters on 04/24/2013 at 10:53 AM2 comments

Hortonworks, Mirantis and Red Hat Partner on Project Savanna

Two of the biggest players in the OpenStack community and a top Hadoop provider announced plans yesterday to join forces to advance the "Hadoop on OpenStack" project known as Savanna. OpenStack systems integrator Mirantis Inc., the company that started Project Savanna, will be working with Hortonworks Inc., the top commercial distributor of Apache Hadoop, and Red Hat Inc., the current leading OpenStack contributor, the three companies said today.

"We're rallying around this notion of Apache Hadoop as the killer application for OpenStack," Shaun Connolly, Hortonworks VP of corporate strategy, told "Hadoop is clearly an important technology in the big data space, and it stands to benefit from being deployed on a cloud platform."

Also known as "Elastic Hadoop on OpenStack," Project Savanna aims to provide a means to easily provision and manage Hadoop clusters on the OpenStack cloud infrastructure. Hadoop, which started as an implementation of the MapReduce paradigm, has evolved into a platform for distributed computing with a growing number of projects built on top of it. The Savanna project specifies Hadoop parameters, such as version, cluster topology and nodes hardware details.

"You can view Savanna as that elastic cloud controller that will make it easy to deploy and spin up Hadoop clusters on demand within an OpenStack cloud," Connolly said.

The collaboration will provide an integration point for third-party Hadoop provisioning and management frameworks, the companies said. One example they point to is the open source Apache Ambari project, which provides an intuitive Hadoop management Web UI backed by its RESTful APIs. The companies say they will have a demonstration of this technology ready for the upcoming Hadoop Summit, scheduled for June in San Jose, Calif.

"We are bringing engineers to bear on this project," Connolly emphasized. "This is not a marketing relationship. It's about real engineers writing real code within a community-driven foundation project."

Mountain View, Calif.-based Mirantis, which specializes in building OpenStack-based, open source cloud platforms, originated Project Savanna, and just recently contributed the source code to the OpenStack community. The project grew out of the "megatrend" of big data initiatives, said company President and CEO Adrian Ionel, and a recognition of a growing demand among its customers for an integrated solution.

"They wanted a unified infrastructure that gives them a more flexible approach to providing resources to applications when they need them, instead of managing separate clusters throughout the enterprise," Ionel said. "We saw a great opportunity to take Apache Hadoop and OpenStack and blend them together to make Hadoop an elastic component on top of OpenStack, which would provide a drastically improved experience in terms of being able to spin up a Hadoop cluster within OpenStack on demand, and then manage it from there and integrate it with other workloads in the enterprise."

Currently in its seventh release (code-named "Grizzly"), OpenStack is made up of several interrelated projects focused on delivering various components for a cloud infrastructure solution. As the community Web site describes it, the project aims to deliver "solutions for all types of clouds by being simple to implement, massively scalable, and feature-rich." More than 180 companies participate in the OpenStack project, including Advanced Micro Devices Inc., Cisco Systems Inc., Citrix Systems Inc., Dell Inc., Hewlett-Packard Co., Intel Corp. and Microsoft.

The three companies made the announcement at the OpenStack Design Summit, which is underway this week in Portland, Ore.

Posted by John K. Waters on 04/17/2013 at 10:53 AM0 comments

Atlassian Announces Confluence 'Blueprints'

Collaboration and development tool maker Atlassian has created a set of page-creation templates, dubbed "Blueprints," designed to simplify the way users of its Confluence content and team collaboration platform create and share their work. Blueprints also provide instructional "placeholder" text and an automated structure for organizing content once it has been created.

Blueprints are aimed at so-called non-technical users (HR teams, sales and marketing, product management, etc.), which the company says account for a growing segment of the population of Confluence users. Atlassian recently released Confluence 5.0, which company co-founder and CEO Mike Cannon-Brookes described in a blog as "Probably the biggest interface overhaul we've ever done in Atlassian's history."

The company is releasing three Confluence Blueprints initially; all three are built into the Confluence environment. They include: Meeting Notes Blueprint, which is provides easy-to-create, formatted meeting pages for tracking people, agendas and notes; File List Blueprint, which allows teams to share and access files in one place that is easily searchable, versioned, and permission-controlled; and Requirements Blueprint, which helps teams to "more easily define, discuss, and organize product requirements" with automatic update versioning, facilitation of discussions, and allowing the use of custom properties for tracking and reporting.

Darryl Duke, founder of StepStone Technologies, was one of the expert partners working with Atlassian on the Blueprint project. StepStone focuses on Confluence almost exclusively, offering a product called Zen Foundation, which is designed to make Confluence simple for non-technical users.

"We think of Confluence, not so much as a tool that helps teams to build great software, but as a tool that helps them to build relevant software," Duke told ADTmag. "It solves the core communication problem faced by any collaboration tool user, and provides a great way to structure the creation of content." 

Duke described Confluence Blueprints as "uber-templates with functionality built in" that allows many different people within an organization to collaborate, from the software development teams to those in the "outer circle," such as the HR department and the legal. "It gives you a much broader ability to collaborate across disciplines within the company," he said. 

Atlassian is an Australian collaboration and development tool maker best known for its JIRA bug tracker and its Confluence collaboration tool. It also makes Stash, an on-premise distributed version control systems (DVCSs) for enterprise teams, and Bitbucket, a cloud-based DVCS hosting service. The company released to beta a new version of its SourceTree desktop client for the Git and Mercurial DVCSs in March.

The first three Atlassian Blueprints are being released into the Atlassian Marketplace, which is embedded within Confluence. Four Atlassian Marketplace vendors have partnered with the company to build their own Blueprints, which are also available for download. They include: strategy canvases by Comalatech for managing tasks and visualizing business processes; online diagrams by Gliffy for building professional-quality flow and organizational charts; polls by Simplenia for creating and sharing simple polls to make group decisions; and Evernote Importer by StiltSoft to bring notes into Confluence for sharing.

Posted by John K. Waters on 04/10/2013 at 10:53 AM0 comments

Java PaaS Provider Jelastic Adds TomEE Support

Java-based Platform as a Service (PaaS) provider Jelastic Inc. has added the Apache TomEE application server to the list of software stacks supported on its platform. Jelastic is the first public PaaS to offer TomEE support.

TomEE (pronounced "Tommy") is a version of Apache Tomcat aimed at the Java Enterprise Edition (JavaEE) Web Profile, a subset of Java EE APIs focused on Web app development. The Apache Software Foundation (ASF) released TomEE as a Java EE 6 Web Profile certified stack last summer. Available under the Apache 2.0 license, it integrates a number of Java projects, including Apache OpenWebBeans, Apache MyFaces, Apache ActiveMQ, Apache CXF and Apache OpenJPA. Version 1.5.1 was released in December 2012.

Support for function-based profiles was one of the most talked about capabilities of Java EE 6. The Web Profile was the first profile defined by the Java Community Process (JCP) expert group, and support for TomEE was among the top requests among Jelastic users, said company COO Dmitry Sotnikov. "TomEE is a natural fit for any cloud platform that offers Tomcat, as it offers Java EE compliance, but with the footprint and startup time of Tomcat," Sotnikov said in a statement.

"In Java EE 5 and previous versions, in order to achieve certification, you had to implement the full set of Java EE APIs," explained Gartner Inc. analyst Massimo Pezzini in an earlier interview. "And there are a ton of those. This is the reason there aren't that many products that are Java EE certified. Basically, it's only the big vendors—JBoss, Oracle WebLogic, IBM WebSphere—who can really afford to put together a Java EE-compliant product. But with profiles, you can define a subset of the Java EE APIs and achieve certification only for that particular subset."

Jelastic is a Java and PHP cloud hosting platform designed for hosted services providers. It runs any Java application in the cloud, the company says, without code or language changes, and without the need to write for specific APIs. It supports any JVM-based application, including apps developed with Java 6, Java 7, JRuby, Scala and Groovy. The Jelastic platform supports three SQL databases: MariaDB, MySQL and PostgreSQL. It also provides non-SQL database support for MongoDB and CouchDB. Along with the newly added TomEE, its list of supported app servers includes Tomcat (6 and 7), GlassFish and Jetty. Jelastic provides its users with developer tools through plug-ins for such build systems as Maven, Ant, Hudson and Jenkins.

Palo Alto, Calif.-based Jelastic was founded in 2010 by Hivetext, a Zhytomyr, Ukraine-based startup focused on Java application development in the cloud. Ruslan Synytsky, founder and CEO of Jelastic, has said that his company's flagship platform is the first Java PaaS to provide "full application compatibility and developer control," and "the only choice for Java developers" who want to avoid lock-in.

Jelastic is hosted in the United States with ServInt; in Russia with Rusonyx; in Germany with dogado; in the United Kingdom and Ireland with Layershift; in Japan with Tsukaeru; in Brazil with Websolute; in Sweden with Elastx; and in Finland with Planeetta.

More information about the Jelastic PaaS is available on the company's Web site. More information about Apache TomEE is available on the TomEE download page.

Posted by John K. Waters on 03/13/2013 at 10:53 AM0 comments

Red Hat Takes OpenJDK 6 Leadership Role

Red Hat developer Andrew Haley will assume the role of project lead for OpenJDK 6, the company announced last week, letting Red Hat "continue to help drive the future of Java and of OpenJDK."

Haley is a long-time Java technical lead and member of the OpenJDK governing board.

This announcement isn't headline-grabbing, but this "transition into a leadership role" underscores Red Hat's commitment to Java."We think that Java will continue to be a strong option for developers for a long time to come," Rob Cardwell, vice president of middleware strategy at Red Hat, told ADTmag. "What we're doing with OpenJDK 6 is continuing a trend we started years ago with IcedTea Project."

Red Hat has been involved in the OpenJDK since 2007, when it signed Sun Microsystems' OpenJDK Community TCK License Agreement. The TCK (Technology Compatibility Kit) is the official test suite for compliance of implementations of Java Specification Requests (JSRs); they can only be provided by the spec lead of a JSR. Red Hat was the first big software vendor to license the TCK.

The IcedTea Project Cardwell referred to was a build and integration project Red Hat launched in 2007. Its aim was to make it possible to add OpenJDK to Fedora and other Linux distributions that require free software. A version of IcedTea based on OpenJDK was packaged with Fedora 8 later that year.

The board oversees the OpenJDK community and upholds its bylaws, but has no direct authority over technical or release decisions. Along with Red Hat's Haley, the list of current board members includes: chairman Georges Saab from Oracle, vice chair John Duimovich from IBM, OpenJDK lead Mark Reinhold from Oracle, at-large member Doug Lea from SUNY Oswego. The board also includes two "observers:" Ed Lynch from IBM, and Mike Milinkovich, executive director of the Eclipse Foundation.

IDC analyst Al Hilwa said he believes Red Hat's continued support and investment in Java -- especially given the company's success as an open source enterprise technology provider - give credibility to the company's "vision for the future of OpenJDK and goal of driving innovation in Java."

Haley blogs fairly frequently, and his posts are worth reading. His latest includes some details on the latest release of IcedTea. An earlier post does a great job of clarifying the security differences between running Java code from the command-line and running it via a browser plugin.

Posted by John K. Waters on 03/12/2013 at 10:53 AM1 comments

Ferris: A New Framework for Google Apps Development

It's an odd way of setting a high standard, naming your flagship product after one of the last century's most notorious cinematic slackers, but the decision to call their new web application development framework "Ferris" (for Ferris Bueller) made perfect sense to its creators at Cloud Sherpas.

 "We're making it easy for developers," explained Cloud Sherpas' Michael Cohn. "And Ferris Bueller was all about easy."

Written in Python, Ferris is an open-source, model-view-controller (MVC) framework specifically designed for developers using the Google App Engine. The MVC architecture makes for a flexible, Rails-like framework for rapid app development. It automatically provides CRUD (Create, Read, Update, Delete) cycle scaffolding of actions and views. It includes a theme engine built on the Python-based templating language Jinja2.And also it comes bundled with an Oauth2 toolkit and a Google API client.

 At its core, Ferris is an MVC with the App Engine in mind, says its creator, Cloud Sherpas programmer Jon Wayne Parrott. In terms of its capabilities, it falls somewhere between microframeworks like Flask or Bottle and a larger, more complex Web app frameworks like Django or Pyramid, he said.

 "It leverages everything that's available by default in App Engine to make it easy to build applications rapidly," Parrott told ADTmag. "You don't have to fight with it at all to access everything App Engine gives you."

Google's App Engine is a suite of the tools and services for building and scaling Web apps on the company's infrastructure. Applications developed using the App Engine Software Development Kit (SDK) can be uploaded and hosted by Google, and those apps can then utilize Google's bandwidth and computing power. Google claims that it's one of the fastest-growing cloud messaging and collaboration platforms, with more than 50 million users and 5 million business customers. 

 The Atlanta-based Cloud Sherpas is a cloud services brokerage, which means the company serves as an intermediary between cloud vendors and buyers. Think next-gen SI or VAR for the cloud. Among other things, the company serves the Google Apps ecosystem, and it claims to be the largest Google Apps systems integrator in the world. The company has been named Google Enterprise Global Partner of the Year for Apps Implementation two years in a row.

 With all the frameworks on the market these days, it's hard not to wonder why we need another one, but Parrott insists that what developers are getting with Ferris is unique. "This is a highly focused framework for the Google App Engine," he said. "We think that's enough of a differentiator."

 Why build the framework in Python?

 "We just find it a lot easier to develop in Python than Java or (Google's) Go at the moment," Parrot said. "When it comes to pure Web development, it's hard to beat Python when it comes to pure speed and ease of use."

 Cloud Sherpas unveiled the Ferris framework at last week's Strata conference. It is available now for free under the Apache v2 license.

BTW: Parrott stars in a YouTube sendup of the 1986 movie Ferris Bueller's Day Off, the framework's namesake. Fair warning: It includes the shower scene.

Posted by John K. Waters on 03/06/2013 at 10:53 AM0 comments

Upcoming Events


Sign up for our newsletter.

I agree to this site's Privacy Policy.